ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WooCommerce Checkout Manager plugin 4.2.6 (latest) - Arbitrary File Upload vulnerability

Product
WooCommerce Checkout Manager
Description
Arbitrary File Upload vulnerability found in WordPress WooCommerce Checkout Manager plugin (version 4.2.6).
Solution
26 April 2019 - no patched version available.
Classification
Type Arbitrary File Upload
OWASP Top 10 A1: Injection
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In 4.2.6
Disclosure date
2019-04-26
Submitter
ThreatPress